$ rpki-client -vvf repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230372e302f32342d3234203d3e203436303239.roa File: 3131372e3132312e3230372e302f32342d3234203d3e203436303239.roa (raw, json) Hash identifier: gDGb08hvTI2y3QINHMIdweQWZuE2Ud13GHUXJ6Kzlok= Subject key identifier: 23:AF:59:17:BC:8D:87:5F:EE:B2:52:EE:3D:E5:9B:7C:87:81:B9:5A Certificate issuer: /CN=45FD71C7EFF830D20E960225B4A971A14B081364 Certificate serial: 0BDF3188C2DA3F53E4907AA2E931E092B002BAB4 Authority key identifier: 45:FD:71:C7:EF:F8:30:D2:0E:96:02:25:B4:A9:71:A1:4B:08:13:64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45FD71C7EFF830D20E960225B4A971A14B081364.cer Subject info access: rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230372e302f32342d3234203d3e203436303239.roa Signing time: Thu 02 Apr 2026 03:04:41 +0000 ROA not before: Thu 02 Apr 2026 02:59:41 +0000 ROA not after: Thu 01 Apr 2027 03:04:41 +0000 asID: 46029 IP address blocks: 117.121.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/45FD71C7EFF830D20E960225B4A971A14B081364.crl rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/45FD71C7EFF830D20E960225B4A971A14B081364.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45FD71C7EFF830D20E960225B4A971A14B081364.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 01:03:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:df:31:88:c2:da:3f:53:e4:90:7a:a2:e9:31:e0:92:b0:02:ba:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45FD71C7EFF830D20E960225B4A971A14B081364 Validity Not Before: Apr 2 02:59:41 2026 GMT Not After : Apr 1 03:04:41 2027 GMT Subject: CN=23AF5917BC8D875FEEB252EE3DE59B7C8781B95A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4e:9b:50:39:87:9b:5e:de:aa:02:e1:ae:84: 26:e7:52:4c:74:57:a9:04:22:5d:d3:66:dd:d9:f8: 21:02:88:2b:c1:9b:bf:39:54:21:93:d9:70:08:09: 71:ba:30:ed:cf:61:49:62:4b:b4:e6:6a:ef:5f:08: b6:6e:85:59:ea:a2:64:2b:52:b9:dd:58:5b:45:41: 8a:61:bd:1a:e7:61:bd:61:28:c1:fb:71:ba:e0:ef: ef:f9:30:90:17:0a:3e:f2:46:47:6b:d0:9f:9b:9a: 50:5b:b7:6b:bb:25:0f:40:0b:1b:06:65:bb:0d:77: 7b:82:85:d8:bc:47:37:40:c7:79:aa:ee:ba:7a:cd: 0b:41:e1:f6:1b:c0:69:2b:87:5b:8b:d4:68:01:a5: 29:ad:c9:dd:2c:6b:5f:f1:36:17:d0:88:27:2c:e3: 0d:6d:64:05:45:9c:01:a6:88:02:25:e9:b7:9d:38: 33:91:a6:ac:05:12:51:72:d9:20:cc:64:b4:82:ee: 28:14:55:c1:2a:46:34:5c:8c:76:0a:92:9c:4a:2d: fd:26:53:35:d7:94:a4:24:d0:0f:59:67:56:78:56: b1:2c:9f:ec:f8:3c:32:30:e0:b5:cd:8c:0e:80:21: 6b:36:6d:29:a5:a8:ab:80:d4:4d:ec:a9:01:21:14: 96:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:AF:59:17:BC:8D:87:5F:EE:B2:52:EE:3D:E5:9B:7C:87:81:B9:5A X509v3 Authority Key Identifier: keyid:45:FD:71:C7:EF:F8:30:D2:0E:96:02:25:B4:A9:71:A1:4B:08:13:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/45FD71C7EFF830D20E960225B4A971A14B081364.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45FD71C7EFF830D20E960225B4A971A14B081364.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230372e302f32342d3234203d3e203436303239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.121.207.0/24 Signature Algorithm: sha256WithRSAEncryption ce:46:de:1a:36:e0:30:e0:62:05:c4:cb:c0:66:c9:bc:20:a3: 2f:21:4a:9a:cd:fa:83:9c:cf:c9:8b:8c:a6:ad:7c:63:1f:24: 93:30:ce:e8:e1:7d:78:28:c5:7f:09:dc:41:ad:ac:e3:cc:4a: fb:c2:d4:4c:a9:76:20:c9:38:5c:7b:21:0e:11:99:c3:a6:2b: e5:e1:1d:de:64:6f:d7:4a:e3:5c:cf:6f:85:bf:2f:62:df:81: 23:59:a6:c8:ee:61:0e:99:9d:eb:3c:83:f4:66:c1:66:66:2a: 11:73:07:a4:f3:b7:82:15:b2:da:4a:d4:0b:e9:e4:97:c7:3d: 46:07:c0:d9:35:b8:8f:11:d8:6c:82:8b:d7:49:3d:36:03:cc: 9d:42:39:63:a7:24:79:6f:81:35:d7:6c:7e:55:68:80:90:30: 3f:0e:5f:d4:23:19:46:2f:d8:6d:71:b3:4f:89:e6:d3:a9:f0: 62:ea:47:ae:d3:b9:92:df:fd:e6:5a:4e:fe:e6:1a:86:b2:b9: b5:88:cb:bb:8c:4d:7d:8e:da:0e:c2:e0:a8:08:8b:f3:58:7e: 4c:1f:2f:92:4e:4b:87:37:16:34:55:c7:46:bf:b2:9c:4d:f6: db:43:4d:1a:83:c6:8e:21:b7:88:6f:d1:80:79:51:cf:5c:28: 54:5f:92:df -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUC98xiMLaP1PkkHqi6THgkrACurQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDVGRDcxQzdFRkY4MzBEMjBFOTYwMjI1QjRBOTcxQTE0 QjA4MTM2NDAeFw0yNjA0MDIwMjU5NDFaFw0yNzA0MDEwMzA0NDFaMDMxMTAvBgNV BAMTKDIzQUY1OTE3QkM4RDg3NUZFRUIyNTJFRTNERTU5QjdDODc4MUI5NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDTptQOYebXt6qAuGuhCbnUkx0 V6kEIl3TZt3Z+CECiCvBm785VCGT2XAICXG6MO3PYUliS7Tmau9fCLZuhVnqomQr UrndWFtFQYphvRrnYb1hKMH7cbrg7+/5MJAXCj7yRkdr0J+bmlBbt2u7JQ9ACxsG ZbsNd3uChdi8RzdAx3mq7rp6zQtB4fYbwGkrh1uL1GgBpSmtyd0sa1/xNhfQiCcs 4w1tZAVFnAGmiAIl6bedODORpqwFElFy2SDMZLSC7igUVcEqRjRcjHYKkpxKLf0m UzXXlKQk0A9ZZ1Z4VrEsn+z4PDIw4LXNjA6AIWs2bSmlqKuA1E3sqQEhFJbXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUI69ZF7yNh1/uslLuPeWbfIeBuVowHwYDVR0j BBgwFoAURf1xx+/4MNIOlgIltKlxoUsIE2QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NTNiMDY3Yy1lY2M5LTRkY2EtOTg3ZC1iOTU3NjgxNWY4NTUvMC80NUZENzFDN0VG RjgzMEQyMEU5NjAyMjVCNEE5NzFBMTRCMDgxMzY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDVGRDcxQzdFRkY4MzBEMjBFOTYwMjI1QjRBOTcxQTE0QjA4 MTM2NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE1M2IwNjdjLWVjYzktNGRjYS05 ODdkLWI5NTc2ODE1Zjg1NS8wLzMxMzEzNzJlMzEzMjMxMmUzMjMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM2MzAzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAdXnPMA0GCSqG SIb3DQEBCwUAA4IBAQDORt4aNuAw4GIFxMvAZsm8IKMvIUqazfqDnM/Ji4ymrXxj HySTMM7o4X14KMV/CdxBrazjzEr7wtRMqXYgyThceyEOEZnDpivl4R3eZG/XSuNc z2+Fvy9i34EjWabI7mEOmZ3rPIP0ZsFmZioRcwek87eCFbLaStQL6eSXxz1GB8DZ NbiPEdhsgovXST02A8ydQjljpyR5b4E112x+VWiAkDA/Dl/UIxlGL9htcbNPiebT qfBi6keu07mS3/3mWk7+5hqGsrm1iMu7jE19jtoOwuCoCIvzWH5MHy+STkuHNxY0 VcdGv7KcTfbbQ00ag8aOIbeIb9GAeVHPXChUX5Lf -----END CERTIFICATE-----Generated at Sat Apr 18 04:13:19 2026 by rpki-client